In this post I'll cover the history of process injection implementations on Linux, and share a somewhat different and simpler implementation aimed at learning and portability. When pentesting Linux boxes, you often end up in a common situation: you have command execution as a non-root user and want to stage some native code to run on the target. There are a number of methods to accomplish this, but they can be roughly categorized into the following: Use shell commands to write the native code to...